$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/26fc08da-85a4-4d3c-8d66-1c6767e44c24.roa File: 26fc08da-85a4-4d3c-8d66-1c6767e44c24.roa (raw, json) Hash identifier: 4exU01eW0Q3E78NYq1gqEk+IzhKSQvkqwlZptS0W7M4= Subject key identifier: 9B:62:15:C6:39:03:D0:8E:39:F6:D1:64:FD:5B:1B:7E:56:7D:C1:D4 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 167E602F77F68F24EFD816323E84EED108CE5E68 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/26fc08da-85a4-4d3c-8d66-1c6767e44c24.roa Signing time: Tue 19 Aug 2025 16:40:22 +0000 ROA not before: Tue 19 Aug 2025 16:40:22 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:7e:60:2f:77:f6:8f:24:ef:d8:16:32:3e:84:ee:d1:08:ce:5e:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 19 16:40:22 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=dd230b314f9d7fe3173bd73a87219b3eb63e2d9ed34eda68ba5ea8f942f49a84, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:77:02:3f:a3:14:26:65:06:a6:88:23:db:ea: c9:ee:c4:0f:bd:17:1f:81:46:d0:7b:2b:01:04:18: 91:6b:5b:99:d0:c9:4e:78:ce:ef:b1:1f:5c:48:7f: 04:5f:46:a1:82:27:c0:38:b2:ee:1d:72:95:cd:39: 69:77:6b:f5:67:ac:10:7a:54:bc:b9:e1:02:54:ae: 67:43:b1:78:fd:f9:42:60:41:a2:04:51:fb:58:c4: 66:20:79:3a:37:7f:14:a8:2a:75:b7:a3:43:bf:9d: cc:12:b2:4b:bb:a3:8e:eb:13:15:5d:93:fc:d4:06: ee:17:42:4c:c8:9f:33:00:87:40:fd:6f:c0:82:7e: 9f:6d:c2:fa:88:f5:03:ba:e0:d9:8c:38:48:89:59: dd:24:53:02:cb:b8:b7:24:65:d7:05:94:41:1f:0f: 24:90:4b:e3:59:ff:c2:55:79:98:cc:99:ee:d6:ce: c3:aa:4a:17:e9:87:47:2b:57:de:80:1c:2d:1e:ac: 37:88:c3:54:c3:f5:47:fc:b7:b5:03:d1:ea:ad:40: a6:90:ba:3c:68:2f:aa:5e:6b:59:a9:42:ea:4f:06: 21:04:cb:4e:f6:ed:cc:72:9f:df:d8:27:f4:5b:a6: 05:f1:cb:9c:07:18:0a:44:be:60:e2:f8:5c:1f:e1: d2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:62:15:C6:39:03:D0:8E:39:F6:D1:64:FD:5B:1B:7E:56:7D:C1:D4 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/26fc08da-85a4-4d3c-8d66-1c6767e44c24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.79.0/24 Signature Algorithm: sha256WithRSAEncryption 85:6a:fe:89:47:d7:07:62:93:60:70:a4:e6:24:1f:1d:51:9f: 46:e3:88:90:61:8a:0d:36:17:d7:4c:33:85:e4:89:e5:9c:fe: 68:0f:65:15:98:d6:dd:4a:f0:77:34:9e:ed:53:f6:d7:ab:71: 04:08:4f:28:59:b6:c4:07:d8:2c:53:6d:c8:ef:54:76:a2:6b: d2:e9:22:d7:0c:21:f0:23:d5:02:01:ba:e3:bc:7c:1d:85:78: bb:a3:cf:bf:64:4f:c0:43:33:43:03:ce:0d:35:c1:37:d5:d2: 7f:50:fb:eb:e5:f6:2f:c6:07:1d:e4:41:ef:53:66:37:35:cc: 58:41:21:96:bb:05:b4:a3:b4:3a:7f:21:97:2c:06:ea:84:d7: be:8d:a8:67:0b:3d:14:f3:c6:e1:08:3e:08:7d:0c:51:8f:19: b1:1b:f8:e5:a9:c9:59:66:3b:2e:29:5b:8e:20:42:b3:0f:dc: 3f:e8:eb:2f:b4:ca:82:c4:20:8e:62:38:51:40:5b:6d:5b:00: a6:d7:e9:05:a0:d8:7a:3f:89:b6:41:50:1e:97:33:1a:ef:dd: c6:b8:99:94:30:5e:a3:63:23:3b:1a:06:39:a6:4c:80:21:0c: 03:8f:cf:1e:4c:20:d0:65:9d:14:3e:44:b0:ef:d5:18:5b:40: 5c:79:15:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFn5gL3f2jyTv2BYyPoTu0QjOXmgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwODE5MTY0MDIyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDIzMGIzMTRmOWQ3ZmUzMTczYmQ3M2E4NzIxOWIzZWI2 M2UyZDllZDM0ZWRhNjhiYTVlYThmOTQyZjQ5YTg0MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCidwI/oxQmZQamiCPb6snuxA+9Fx+BRtB7KwEEGJFrW5nQ yU54zu+xH1xIfwRfRqGCJ8A4su4dcpXNOWl3a/VnrBB6VLy54QJUrmdDsXj9+UJg QaIEUftYxGYgeTo3fxSoKnW3o0O/ncwSsku7o47rExVdk/zUBu4XQkzInzMAh0D9 b8CCfp9twvqI9QO64NmMOEiJWd0kUwLLuLckZdcFlEEfDySQS+NZ/8JVeZjMme7W zsOqShfph0crV96AHC0erDeIw1TD9Uf8t7UD0eqtQKaQujxoL6pea1mpQupPBiEE y0727cxyn9/YJ/RbpgXxy5wHGApEvmDi+Fwf4dJPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm2IVxjkD0I459tFk/VsbflZ9wdQwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzI2ZmMwOGRhLTg1YTQtNGQzYy04ZDY2LTFjNjc2N2U0NGMyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtUk8wDQYJKoZIhvcNAQELBQADggEBAIVq/olH1wdik2BwpOYkHx1Rn0bj iJBhig02F9dMM4XkieWc/mgPZRWY1t1K8Hc0nu1T9tercQQITyhZtsQH2CxTbcjv VHaia9LpItcMIfAj1QIBuuO8fB2FeLujz79kT8BDM0MDzg01wTfV0n9Q++vl9i/G Bx3kQe9TZjc1zFhBIZa7BbSjtDp/IZcsBuqE176NqGcLPRTzxuEIPgh9DFGPGbEb +OWpyVlmOy4pW44gQrMP3D/o6y+0yoLEII5iOFFAW21bAKbX6QWg2Ho/ibZBUB6X Mxrv3ca4mZQwXqNjIzsaBjmmTIAhDAOPzx5MINBlnRQ+RLDv1RhbQFx5FVY= -----END CERTIFICATE-----Generated at Wed Aug 20 10:40:40 2025 by rpki-client